npm - @lindorm/aes - Versions diffs - 0.6.5 → 0.7.1 - Mend

@lindorm/aes 0.6.5 → 0.7.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (264) hide show

package/dist/utils/parse-aes.js CHANGED Viewed

@@ -1,26 +1,22 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.parseAes = void 0;
-const is_1 = require("@lindorm/is");
-const errors_1 = require("../errors");
-const is_aes_1 = require("./is-aes");
-const encoded_aes_1 = require("../internal/utils/encoded-aes");
-const serialised_aes_1 = require("../internal/utils/serialised-aes");
-const tokenised_aes_1 = require("../internal/utils/tokenised-aes");
-const parseAes = (data) => {
-    if ((0, is_1.isString)(data) && (0, is_aes_1.isAesTokenised)(data)) {
-        return (0, tokenised_aes_1.parseTokenisedAesString)(data);
+import { isObject, isString } from "@lindorm/is";
+import { AesError } from "../errors/index.js";
+import { isAesBufferData, isAesSerialisedData, isAesTokenised } from "./is-aes.js";
+import { parseEncodedAesString } from "../internal/utils/encoded-aes.js";
+import { parseSerialisedAesRecord } from "../internal/utils/serialised-aes.js";
+import { parseTokenisedAesString } from "../internal/utils/tokenised-aes.js";
+export const parseAes = (data) => {
+    if (isString(data) && isAesTokenised(data)) {
+        return parseTokenisedAesString(data);
     }
-    if ((0, is_1.isString)(data) && !(0, is_aes_1.isAesTokenised)(data)) {
-        return (0, encoded_aes_1.parseEncodedAesString)(data);
+    if (isString(data) && !isAesTokenised(data)) {
+        return parseEncodedAesString(data);
     }
-    if ((0, is_1.isObject)(data) && (0, is_aes_1.isAesBufferData)(data)) {
+    if (isObject(data) && isAesBufferData(data)) {
         return data;
     }
-    if ((0, is_1.isObject)(data) && (0, is_aes_1.isAesSerialisedData)(data)) {
-        return (0, serialised_aes_1.parseSerialisedAesRecord)(data);
+    if (isObject(data) && isAesSerialisedData(data)) {
+        return parseSerialisedAesRecord(data);
     }
-    throw new errors_1.AesError("Invalid AES data");
+    throw new AesError("Invalid AES data");
 };
-exports.parseAes = parseAes;
 //# sourceMappingURL=parse-aes.js.map

package/dist/utils/parse-aes.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"parse-aes.js","sourceRoot":"","sources":["../../src/utils/parse-aes.ts"],"names":[],"mappings":"~~;;;~~AAAA,~~oCAAiD~~;AACjD,~~sCAAqC~~;~~AAMrC~~,~~qCAAgF~~;~~AAChF,+DAAsE~~;~~AACtE~~,~~qEAA4E~~;~~AAC5E~~,~~mEAA0E~~;~~AASnE~~,MAAM,QAAQ,GAAa,CAChC,IAA4D,EACvD,EAAE;IACP,IAAI,~~IAAA~~,~~aAAQ~~,~~EAAC,~~IAAI,CAAC,IAAI,~~IAAA~~,~~uBAAc~~,~~EAAC,~~IAAI,CAAC,EAAE,CAAC;QAC3C,OAAO,~~IAAA~~,~~uCAAuB~~,~~EAAC,~~IAAI,CAAC,CAAC;IACvC,CAAC;IAED,IAAI,~~IAAA~~,~~aAAQ~~,~~EAAC,~~IAAI,CAAC,IAAI,CAAC,~~IAAA~~,~~uBAAc~~,~~EAAC,~~IAAI,CAAC,EAAE,CAAC;QAC5C,OAAO,~~IAAA~~,~~mCAAqB~~,~~EAAC,~~IAAI,CAAC,CAAC;IACrC,CAAC;IAED,IAAI,~~IAAA~~,~~aAAQ~~,~~EAAC,~~IAAI,CAAC,IAAI,~~IAAA~~,~~wBAAe~~,~~EAAC,~~IAAI,CAAC,EAAE,CAAC;QAC5C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,~~IAAA~~,~~aAAQ~~,~~EAAC,~~IAAI,CAAC,IAAI,~~IAAA~~,~~4BAAmB~~,~~EAAC,~~IAAI,CAAC,EAAE,CAAC;QAChD,OAAO,~~IAAA~~,~~yCAAwB~~,~~EAAC,~~IAAI,CAAC,CAAC;IACxC,CAAC;IAED,MAAM,IAAI,~~iBAAQ~~,CAAC,kBAAkB,CAAC,CAAC;AACzC,CAAC,CAAC~~;AApBW,QAAA,QAAQ,YAoBnB~~"}
1	+ {"version":3,"file":"parse-aes.js","sourceRoot":"","sources":["../../src/utils/parse-aes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAM9C,OAAO,EAAE,eAAe,EAAE,mBAAmB,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AACnF,OAAO,EAAE,qBAAqB,EAAE,MAAM,kCAAkC,CAAC;AACzE,OAAO,EAAE,wBAAwB,EAAE,MAAM,qCAAqC,CAAC;AAC/E,OAAO,EAAE,uBAAuB,EAAE,MAAM,oCAAoC,CAAC;AAS7E,MAAM,CAAC,MAAM,QAAQ,GAAa,CAChC,IAA4D,EACvD,EAAE;IACP,IAAI,QAAQ,CAAC,IAAI,CAAC,IAAI,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC;QAC3C,OAAO,uBAAuB,CAAC,IAAI,CAAC,CAAC;IACvC,CAAC;IAED,IAAI,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,EAAE,CAAC;QAC5C,OAAO,qBAAqB,CAAC,IAAI,CAAC,CAAC;IACrC,CAAC;IAED,IAAI,QAAQ,CAAC,IAAI,CAAC,IAAI,eAAe,CAAC,IAAI,CAAC,EAAE,CAAC;QAC5C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,QAAQ,CAAC,IAAI,CAAC,IAAI,mBAAmB,CAAC,IAAI,CAAC,EAAE,CAAC;QAChD,OAAO,wBAAwB,CAAC,IAAI,CAAC,CAAC;IACxC,CAAC;IAED,MAAM,IAAI,QAAQ,CAAC,kBAAkB,CAAC,CAAC;AACzC,CAAC,CAAC"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@lindorm/aes",
-  "version": "0.6.5",
+  "version": "0.7.1",
   "license": "AGPL-3.0-or-later",
   "author": "Jonn Nilsson",
   "repository": {
@@ -11,33 +11,32 @@
   "publishConfig": {
     "access": "public"
   },
-  "main": "dist/index.js",
+  "files": [
+    "dist"
+  ],
+  "type": "module",
   "typings": "dist/index.d.ts",
   "exports": {
     ".": {
       "types": "./dist/index.d.ts",
       "default": "./dist/index.js"
     },
-    "./mocks": {
-      "types": "./dist/mocks/index.d.ts",
-      "default": "./dist/mocks/index.js"
-    }
-  },
-  "typesVersions": {
-    "*": {
-      "mocks": [
-        "dist/mocks/index.d.ts"
-      ]
+    "./mocks/jest": {
+      "types": "./dist/mocks/jest.d.ts",
+      "default": "./dist/mocks/jest.js"
+    },
+    "./mocks/vitest": {
+      "types": "./dist/mocks/vitest.d.ts",
+      "default": "./dist/mocks/vitest.js"
     }
   },
   "scripts": {
     "build": "rimraf dist && tsc -b ./tsconfig.build.json",
     "example": "ts-node example",
     "prettier": "prettier --write ./src/*",
-    "test": "jest",
-    "test:ci": "jest",
-    "test:interop": "NODE_OPTIONS='--experimental-vm-modules' jest --config jest.config.interop.mjs --no-coverage",
-    "test:watch": "jest --watch --",
+    "test": "vitest run",
+    "test:unit": "vitest run --exclude '**/*.integration.test.ts'",
+    "test:watch": "vitest",
     "typecheck": "tsc",
     "typecheck:watch": "tsc --watch",
     "update": "ncu -i",
@@ -45,16 +44,16 @@
     "verify": "npm run typecheck && npm run build && npm test"
   },
   "dependencies": {
-    "@lindorm/b64": "^0.1.10",
-    "@lindorm/errors": "^0.1.18",
-    "@lindorm/is": "^0.1.16",
-    "@lindorm/kryptos": "^0.7.0",
-    "@lindorm/utils": "^0.7.1"
+    "@lindorm/b64": "^0.2.1",
+    "@lindorm/errors": "^0.2.1",
+    "@lindorm/is": "^0.2.1",
+    "@lindorm/kryptos": "^0.8.1",
+    "@lindorm/types": "^0.6.1",
+    "@lindorm/utils": "^0.8.1"
   },
   "devDependencies": {
-    "@lindorm/types": "^0.5.0",
     "@noble/ciphers": "^2.1.1",
     "jose": "^6.2.1"
   },
-  "gitHead": "2f258248c91376d768d11e26b72d26b57208007b"
+  "gitHead": "da067071d415e07d7d25bbac1621b9e02fcc3166"
 }

package/CHANGELOG.md DELETED Viewed

@@ -1,165 +0,0 @@
-# Change Log
-All notable changes to this project will be documented in this file.
-See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
-## [0.6.5](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.6.4...@lindorm/aes@0.6.5) (2026-04-19)
-**Note:** Version bump only for package @lindorm/aes
-## [0.6.4](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.6.3...@lindorm/aes@0.6.4) (2026-04-15)
-**Note:** Version bump only for package @lindorm/aes
-## [0.6.3](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.6.2...@lindorm/aes@0.6.3) (2026-04-01)
-### Bug Fixes
-- **aes,amphora:** use relative imports for test fixtures ([5ebc484](https://github.com/lindorm-io/monorepo/commit/5ebc484e7dd664b85f40a57db0057364e8883ce9))
-## [0.6.2](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.6.1...@lindorm/aes@0.6.2) (2026-03-13)
-**Note:** Version bump only for package @lindorm/aes
-## [0.6.1](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.6.0...@lindorm/aes@0.6.1) (2026-03-13)
-**Note:** Version bump only for package @lindorm/aes
-# [0.6.0](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.5.5...@lindorm/aes@0.6.0) (2026-02-17)
-### Bug Fixes
-- **aes:** add buffer boundary validation in encoded string parser ([579e8f7](https://github.com/lindorm-io/monorepo/commit/579e8f7eb40570f978cd52d1f87f7f8570474d6d))
-- **aes:** add GCM auth tag enforcement and key-wrap input validation ([1a8fd3c](https://github.com/lindorm-io/monorepo/commit/1a8fd3cb6f83cf59a3089a777fba4c8b7f1828fb))
-- **aes:** add missing @lindorm/utils dependency ([6d0ee2a](https://github.com/lindorm-io/monorepo/commit/6d0ee2ae68f91fb9eb04529c96e05ff1d843dfd0))
-- **aes:** make CBC HMAC auth tag compliant with RFC 7518 ([7877022](https://github.com/lindorm-io/monorepo/commit/7877022bebdf902ff13996b1032a991356f3760c))
-- **aes:** make PBES2 salt compliant with RFC 7518 ([2693afa](https://github.com/lindorm-io/monorepo/commit/2693afa88db535aeaff7fd5537885dd3a45bc09a))
-- **aes:** make verify/assert work with non-string content ([aa94c66](https://github.com/lindorm-io/monorepo/commit/aa94c66511326f70fdfc0245ce12953025aa4236))
-- **aes:** remove unnecessary g flag from tokenised regex ([5a989b1](https://github.com/lindorm-io/monorepo/commit/5a989b1d96b025b3180339294e8ea072d215c7d3))
-- **aes:** replace generic Error with AesError in all locations ([ff7a08d](https://github.com/lindorm-io/monorepo/commit/ff7a08d55e9b39755e059e31e99fb45b687bdde2))
-- **aes:** use Concat KDF per RFC 7518 for ECDH-ES key agreement ([8e92b8f](https://github.com/lindorm-io/monorepo/commit/8e92b8f60ee46c99f0c66af244fd1e7648130a9c))
-- **aes:** use crypto.randomInt for PBKDF2 iterations, fix RSA test fixture ([a5457aa](https://github.com/lindorm-io/monorepo/commit/a5457aa5973e4eab662dbc6e62c9470f7d6fabf2))
-- **aes:** use oct keys directly for AES key wrap per RFC 7518 ([c65ca49](https://github.com/lindorm-io/monorepo/commit/c65ca49d758f21e868e96512a96fc8df0559947e))
-- **aes:** use timingSafeEqual for ECB key unwrap integrity check ([dd27a65](https://github.com/lindorm-io/monorepo/commit/dd27a65c84eed068d6e9e5de34d0eaca6cda67fc))
-- **aes:** use timingSafeEqual for HMAC auth tag verification ([757bef5](https://github.com/lindorm-io/monorepo/commit/757bef5657a6d1366c222c9205a8f4cfe563e77d))
-- **lint:** add missing eslint-config-prettier and fix prettier formatting ([6899e39](https://github.com/lindorm-io/monorepo/commit/6899e39ad7700e373173b0a61b429b5536c13934))
-- **lint:** resolve eslint warnings and errors ([210ef3c](https://github.com/lindorm-io/monorepo/commit/210ef3c91c82521c4cec57bc2256324ba9c3f45a))
-### Features
-- **aes:** accept optional AAD parameter for authenticated encryption ([011b67f](https://github.com/lindorm-io/monorepo/commit/011b67fb8ba18a361e2c31fd0e78298a89f89cd2))
-- **aes:** add prepareEncryption() for two-step JWE-compliant encryption ([56b3c54](https://github.com/lindorm-io/monorepo/commit/56b3c5435722b2b94f05d6483c7651ccdd5ea9dd))
-- **aes:** rewrite formats with unified model and always-on AAD ([bc1da71](https://github.com/lindorm-io/monorepo/commit/bc1da719d5ee5ee151d9220e6e738a9431e036b6))
-## [0.5.5](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.5.4...@lindorm/aes@0.5.5) (2025-09-18)
-**Note:** Version bump only for package @lindorm/aes
-## [0.5.4](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.5.3...@lindorm/aes@0.5.4) (2025-07-19)
-**Note:** Version bump only for package @lindorm/aes
-## [0.5.3](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.5.2...@lindorm/aes@0.5.3) (2025-07-12)
-**Note:** Version bump only for package @lindorm/aes
-## [0.5.2](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.5.1...@lindorm/aes@0.5.2) (2025-07-10)
-**Note:** Version bump only for package @lindorm/aes
-## [0.5.1](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.5.0...@lindorm/aes@0.5.1) (2025-07-02)
-### Bug Fixes
-- amend bug in aes utility ([7437e8e](https://github.com/lindorm-io/monorepo/commit/7437e8e0f047bb0995b8a8c0e6929c9cc368d592))
-# [0.5.0](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.4.2...@lindorm/aes@0.5.0) (2025-06-17)
-### Bug Fixes
-- align with kryptos changes ([3f934a4](https://github.com/lindorm-io/monorepo/commit/3f934a4ec55eee3d4ebc6f0be55886d8f095af8b))
-- align with kryptos changes ([206eb38](https://github.com/lindorm-io/monorepo/commit/206eb38ae2a03b14973e706035c87a953cc753af))
-- improve and expose aes parsing ([ec6f271](https://github.com/lindorm-io/monorepo/commit/ec6f27179ec3d67146a50257cbff98fe253c3380))
-- improve types ([f6ce002](https://github.com/lindorm-io/monorepo/commit/f6ce002e8555c54ba4f12bd67222457fa2bcf90a))
-- update try catch ([7ebebe8](https://github.com/lindorm-io/monorepo/commit/7ebebe81f40851b0d1fcb05e6e6cc60b1c754a91))
-### Features
-- add content type to aes data ([dfb3285](https://github.com/lindorm-io/monorepo/commit/dfb3285ddf20bc77cf8f3d2531e26032853b98a9))
-## [0.4.2](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.4.1...@lindorm/aes@0.4.2) (2025-01-28)
-**Note:** Version bump only for package @lindorm/aes
-## [0.4.1](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.4.0...@lindorm/aes@0.4.1) (2024-10-12)
-**Note:** Version bump only for package @lindorm/aes
-# [0.4.0](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.3.3...@lindorm/aes@0.4.0) (2024-10-09)
-### Bug Fixes
-- move content to end of encoded array so that it can be any size ([b053924](https://github.com/lindorm-io/monorepo/commit/b05392484342976f519b32f943aac41271761df4))
-### Features
-- add automatic b64 encoding ([f3ac64e](https://github.com/lindorm-io/monorepo/commit/f3ac64e7922528b1afe0f0acbc52b62aa7003d2d))
-- rename modes and add encoded ([b8c9d4c](https://github.com/lindorm-io/monorepo/commit/b8c9d4c26a069444fa7bff5a809308cecff971ef))
-## [0.3.3](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.3.2...@lindorm/aes@0.3.3) (2024-09-25)
-**Note:** Version bump only for package @lindorm/aes
-## [0.3.2](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.3.1...@lindorm/aes@0.3.2) (2024-09-23)
-**Note:** Version bump only for package @lindorm/aes
-## [0.3.1](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.3.0...@lindorm/aes@0.3.1) (2024-09-20)
-**Note:** Version bump only for package @lindorm/aes
-# [0.3.0](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.2.0...@lindorm/aes@0.3.0) (2024-05-20)
-### Features
-- add gcm keywrap ([8eefa5d](https://github.com/lindorm-io/monorepo/commit/8eefa5dd2914faba842c0a050a9317d2b6f5b197))
-# [0.2.0](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.1.3...@lindorm/aes@0.2.0) (2024-05-19)
-### Bug Fixes
-- align curves to kryptos ([b9288a5](https://github.com/lindorm-io/monorepo/commit/b9288a54b6dbb520328aff77cd3c8d2818183ac5))
-- align with kryptos changes ([344c4e2](https://github.com/lindorm-io/monorepo/commit/344c4e2fad07e66c91f7e0820bfc929c1f8ffcab))
-- improve kryptos generate method ([9e7098d](https://github.com/lindorm-io/monorepo/commit/9e7098d4b219b11140e28e554ffd573204772249))
-- remove private key encryption ([be54916](https://github.com/lindorm-io/monorepo/commit/be54916a20de667e96826d6be0eb8d0fda67176e))
-- remove unnecessary code ([e44a056](https://github.com/lindorm-io/monorepo/commit/e44a0565e577fc23a827c9283839684c1e40d287))
-- rename interfaces ([3b1f457](https://github.com/lindorm-io/monorepo/commit/3b1f45736f88b8c2d4481cbeca6da87bf8443bde))
-- simplify interfaces with kryptos metadata ([c4075d2](https://github.com/lindorm-io/monorepo/commit/c4075d2e133c2fe0a1fafa548da68db34b3407c6))
-- use pbkdf2 key derivation for oct ([d068947](https://github.com/lindorm-io/monorepo/commit/d068947f70712fb71f57d5ec6947062219200155))
-### Features
-- add okp encryption and clean up ec encryption ([4d3cbab](https://github.com/lindorm-io/monorepo/commit/4d3cbabe1968ab7f8a9ecc8e226ce91403342f0f))
-- implement missing encryption types ([c94b538](https://github.com/lindorm-io/monorepo/commit/c94b53823fcb7a24823b25535b83799f2bbdd250))
-- refine and improve oct encryption ([99db5a2](https://github.com/lindorm-io/monorepo/commit/99db5a290b7a081ab80c3811bcc04021e1ac9b4e))
-- use pbkdf with short oct keys ([d1d8e5e](https://github.com/lindorm-io/monorepo/commit/d1d8e5ea6dcac24b1b1402e841777a0affefcfff))
-## [0.1.3](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.1.2...@lindorm/aes@0.1.3) (2024-05-12)
-**Note:** Version bump only for package @lindorm/aes
-## [0.1.2](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.1.1...@lindorm/aes@0.1.2) (2024-05-11)
-**Note:** Version bump only for package @lindorm/aes
-## [0.1.1](https://github.com/lindorm-io/monorepo/compare/@lindorm/aes@0.1.0...@lindorm/aes@0.1.1) (2024-05-11)
-### Bug Fixes
-- amend wrong export path and rename ([87e6dd1](https://github.com/lindorm-io/monorepo/commit/87e6dd12057fe35c1c0b26a327a098015f041b44))
-# 0.1.0 (2024-05-11)
-### Features
-- implement aes package ([4267f1f](https://github.com/lindorm-io/monorepo/commit/4267f1f2b368bcc42181f274872793897347e539))

package/MERMAID.md DELETED Viewed

@@ -1,155 +0,0 @@
-# Mermaid Diagram
-```mermaid
-  graph TB
-      subgraph "External Dependencies"
-          KRYPTOS["@lindorm/kryptos<br/>(Key Management)"]
-          B64["@lindorm/b64<br/>(Base64 Encoding)"]
-          IS["@lindorm/is<br/>(Type Guards)"]
-          ERRORS["@lindorm/errors<br/>(Error Handling)"]
-      end
-      subgraph "Public API"
-          AESKIT["AesKit Class<br/>Main Entry Point"]
-          PARSE["parseAes()<br/>Parse any format"]
-          ISAES["isAesTokenised()<br/>Type checking"]
-      end
-      subgraph "Encryption Flow"
-          ENCRYPT["encrypt(data, mode)"]
-          GET_ENC_KEY["getEncryptionKey()"]
-          subgraph "Key Type Routing"
-              EC_ENC["EC Keys<br/>(Elliptic Curve)"]
-              OKP_ENC["OKP Keys<br/>(Edwards Curve)"]
-              OCT_ENC["oct Keys<br/>(Symmetric)"]
-              RSA_ENC["RSA Keys"]
-          end
-          subgraph "Key Derivation Methods"
-              DIR["Direct Key<br/>(dir)"]
-              ECDH["ECDH-ES<br/>(Diffie-Hellman)"]
-              KEYWRAP["Key Wrap<br/>(AES-KW/GCM)"]
-              PBKDF["PBKDF2<br/>(Password-based)"]
-          end
-          CEK["Content Encryption Key<br/>(Split into encKey + hashKey)"]
-          AES_CIPHER["Node crypto.createCipheriv()<br/>(AES-128/192/256-CBC/GCM)"]
-          AUTH_TAG["Generate Auth Tag<br/>(GCM or HMAC)"]
-          subgraph "Output Modes"
-              ENCODED["Encoded<br/>(base64 string)"]
-              RECORD["Record<br/>(Buffer objects)"]
-              SERIALISED["Serialised<br/>(JSON-safe strings)"]
-              TOKENISED["Tokenised<br/>($enc$params$content$)"]
-          end
-      end
-      subgraph "Decryption Flow"
-          DECRYPT["decrypt(data)"]
-          PARSE_INPUT["Parse Input<br/>(parseAes)"]
-          GET_DEC_KEY["getDecryptionKey()"]
-          subgraph "Key Type Decryption"
-              EC_DEC["EC Keys"]
-              OKP_DEC["OKP Keys"]
-              OCT_DEC["oct Keys"]
-              RSA_DEC["RSA Keys"]
-          end
-          CEK_DEC["Content Encryption Key"]
-          AES_DECIPHER["Node crypto.createDecipheriv()"]
-          VERIFY_TAG["Verify Auth Tag"]
-          PARSE_CONTENT["Parse Content<br/>(by contentType)"]
-      end
-      subgraph "Data Types"
-          CONTENT["AesContent<br/>string | Buffer | object | array | number"]
-          CONTENT_TYPE["AesContentType<br/>text/plain | application/json | application/octet-stream"]
-      end
-      subgraph "Encryption Metadata"
-          RECORD_TYPE["AesEncryptionRecord<br/>• algorithm<br/>• encryption<br/>• keyId<br/>• content<br/>•
-  authTag<br/>• IV<br/>• contentType<br/>• pbkdfSalt/Iterations<br/>• publicEncryptionKey/Jwk"]
-      end
-      %% Main flow connections
-      AESKIT --> ENCRYPT
-      AESKIT --> DECRYPT
-      AESKIT --> KRYPTOS
-      ENCRYPT --> CONTENT
-      ENCRYPT --> GET_ENC_KEY
-      GET_ENC_KEY --> KRYPTOS
-      GET_ENC_KEY --> EC_ENC
-      GET_ENC_KEY --> OKP_ENC
-      GET_ENC_KEY --> OCT_ENC
-      GET_ENC_KEY --> RSA_ENC
-      EC_ENC --> ECDH
-      EC_ENC --> KEYWRAP
-      OKP_ENC --> ECDH
-      OKP_ENC --> KEYWRAP
-      OCT_ENC --> DIR
-      OCT_ENC --> KEYWRAP
-      OCT_ENC --> PBKDF
-      RSA_ENC --> KEYWRAP
-      ECDH --> CEK
-      KEYWRAP --> CEK
-      PBKDF --> CEK
-      DIR --> CEK
-      CEK --> AES_CIPHER
-      CONTENT --> AES_CIPHER
-      AES_CIPHER --> AUTH_TAG
-      AUTH_TAG --> RECORD_TYPE
-      RECORD_TYPE --> ENCODED
-      RECORD_TYPE --> RECORD
-      RECORD_TYPE --> SERIALISED
-      RECORD_TYPE --> TOKENISED
-      %% Decryption flow
-      DECRYPT --> PARSE_INPUT
-      PARSE_INPUT --> ENCODED
-      PARSE_INPUT --> RECORD
-      PARSE_INPUT --> SERIALISED
-      PARSE_INPUT --> TOKENISED
-      PARSE_INPUT --> GET_DEC_KEY
-      GET_DEC_KEY --> KRYPTOS
-      GET_DEC_KEY --> EC_DEC
-      GET_DEC_KEY --> OKP_DEC
-      GET_DEC_KEY --> OCT_DEC
-      GET_DEC_KEY --> RSA_DEC
-      EC_DEC --> CEK_DEC
-      OKP_DEC --> CEK_DEC
-      OCT_DEC --> CEK_DEC
-      RSA_DEC --> CEK_DEC
-      CEK_DEC --> AES_DECIPHER
-      RECORD_TYPE --> AES_DECIPHER
-      AES_DECIPHER --> VERIFY_TAG
-      VERIFY_TAG --> PARSE_CONTENT
-      PARSE_CONTENT --> CONTENT_TYPE
-      %% Utility connections
-      B64 --> ENCODED
-      B64 --> TOKENISED
-      B64 --> SERIALISED
-      IS --> PARSE_INPUT
-      ERRORS --> AESKIT
-      style AESKIT fill:#4a90e2,stroke:#2e5c8a,color:#fff
-      style ENCRYPT fill:#50c878,stroke:#2d7a4a,color:#fff
-      style DECRYPT fill:#e27d60,stroke:#a85a43,color:#fff
-      style KRYPTOS fill:#9b59b6,stroke:#6c3a8a,color:#fff
-      style CEK fill:#f39c12,stroke:#b87a0a,color:#fff
-      style CEK_DEC fill:#f39c12,stroke:#b87a0a,color:#fff
-```

package/__tests__/INTEROP-RESULTS.md DELETED Viewed

@@ -1,66 +0,0 @@
-# AES Interop Test Results
-## Summary
-All 59 interop tests pass. Zero divergences found between `@lindorm/aes`,
-`@noble/ciphers`, and `jose`.
-| Suite         | Tests  | Pass   | Fail  | Skip  |
-| ------------- | ------ | ------ | ----- | ----- |
-| noble-ciphers | 21     | 21     | 0     | 0     |
-| jose-jwe      | 38     | 38     | 0     | 0     |
-| **Total**     | **59** | **59** | **0** | **0** |
-## noble/ciphers Primitive Tests
-| Primitive         | Key Sizes     | Direction                      | Result |
-| ----------------- | ------------- | ------------------------------ | ------ |
-| AES-GCM           | 128, 192, 256 | ours → noble                   | PASS   |
-| AES-GCM           | 128, 192, 256 | noble → ours                   | PASS   |
-| AES-GCM           | 128, 192, 256 | byte-identical (pinned IV)     | PASS   |
-| AES-KW (RFC 3394) | 128, 192, 256 | ours → noble                   | PASS   |
-| AES-KW (RFC 3394) | 128, 192, 256 | noble → ours                   | PASS   |
-| AES-KW (RFC 3394) | 128, 192, 256 | byte-identical (deterministic) | PASS   |
-| AES-CBC (raw)     | 128, 192, 256 | byte-identical (PKCS7)         | PASS   |
-## jose JWE Tests
-| Algorithm              | Encryption                                  | Direction   | Result |
-| ---------------------- | ------------------------------------------- | ----------- | ------ |
-| dir                    | A128GCM, A192GCM, A256GCM                   | ours → jose | PASS   |
-| dir                    | A128GCM, A192GCM, A256GCM                   | jose → ours | PASS   |
-| dir                    | A128CBC-HS256, A192CBC-HS384, A256CBC-HS512 | ours → jose | PASS   |
-| dir                    | A128CBC-HS256, A192CBC-HS384, A256CBC-HS512 | jose → ours | PASS   |
-| A128KW, A192KW, A256KW | A128GCM, A256GCM                            | ours → jose | PASS   |
-| A128KW, A192KW, A256KW | A128GCM, A256GCM                            | jose → ours | PASS   |
-| A128KW, A192KW, A256KW | A128CBC-HS256, A192CBC-HS384, A256CBC-HS512 | ours → jose | PASS   |
-| A128KW, A192KW, A256KW | A128CBC-HS256, A192CBC-HS384, A256CBC-HS512 | jose → ours | PASS   |
-| A128GCMKW, A256GCMKW   | A256GCM                                     | ours → jose | PASS   |
-| A128GCMKW, A256GCMKW   | A256GCM                                     | jose → ours | PASS   |
-| Pinned deterministic   | A256GCM (byte-identical)                    | comparison  | PASS   |
-| Pinned deterministic   | A256GCM (round-trip)                        | comparison  | PASS   |
-| Pinned deterministic   | A128CBC-HS256 (byte-identical)              | comparison  | PASS   |
-| Pinned deterministic   | A128CBC-HS256 (round-trip)                  | comparison  | PASS   |
-## Validated RFC Compliance
-- **RFC 7516** (JWE): AAD computation, flattened serialization format
-- **RFC 7518** (JWA): AES-GCM, AES-CBC-HMAC-SHA2, AES Key Wrap, AES-GCM Key Wrap
-- **RFC 3394**: AES Key Wrap (deterministic, AIV verification)
-## Notes
-- GCMKW "ours → jose" direction uses a two-pass approach due to the circular
-  dependency between key-wrap params and JWE AAD. Content is re-encrypted with
-  the correct AAD after extracting key-wrap params from the first pass.
-- jose v6 rejects `setContentEncryptionKey()` with `alg: "dir"`, so deterministic
-  pinned tests use A\*KW algorithms instead. Content encryption is identical
-  regardless of key management algorithm.
-- `@noble/ciphers` GCM returns ciphertext with auth tag appended (last 16 bytes).
-  Tests correctly split/concatenate when converting between formats.
-## Environment
-- Node.js >= 24.4.0
-- `@noble/ciphers` ^1.2.1
-- `jose` ^6.1.3

package/__tests__/esm-smoke.test.ts DELETED Viewed

@@ -1,15 +0,0 @@
-import { gcm, cbc, aeskw } from "@noble/ciphers/aes";
-import { FlattenedEncrypt, flattenedDecrypt } from "jose";
-describe("ESM import smoke test", () => {
-  test("should import @noble/ciphers", () => {
-    expect(gcm).toBeDefined();
-    expect(cbc).toBeDefined();
-    expect(aeskw).toBeDefined();
-  });
-  test("should import jose", () => {
-    expect(FlattenedEncrypt).toBeDefined();
-    expect(flattenedDecrypt).toBeDefined();
-  });
-});

package/__tests__/fixtures/keys.ts DELETED Viewed

@@ -1,60 +0,0 @@
-import { randomUUID } from "crypto";
-import {
-  Kryptos,
-  KryptosAlgorithm,
-  KryptosEncryption,
-  KryptosKit,
-} from "@lindorm/kryptos";
-// Fixed raw symmetric keys for dir mode (CEK = key)
-export const RAW_KEY_128 = Buffer.from("000102030405060708090a0b0c0d0e0f", "hex");
-export const RAW_KEY_192 = Buffer.from(
-  "000102030405060708090a0b0c0d0e0f1011121314151617",
-  "hex",
-);
-export const RAW_KEY_256 = Buffer.from(
-  "000102030405060708090a0b0c0d0e0f101112131415161718191a1b1c1d1e1f",
-  "hex",
-);
-// CBC-HMAC composite keys (double-length: half for HMAC, half for AES-CBC)
-export const RAW_KEY_256_CBC = Buffer.from(
-  "202122232425262728292a2b2c2d2e2f303132333435363738393a3b3c3d3e3f",
-  "hex",
-);
-export const RAW_KEY_384_CBC = Buffer.from(
-  "404142434445464748494a4b4c4d4e4f505152535455565758595a5b5c5d5e5f606162636465666768696a6b6c6d6e6f",
-  "hex",
-);
-export const RAW_KEY_512_CBC = Buffer.from(
-  "808182838485868788898a8b8c8d8e8f909192939495969798999a9b9c9d9e9fa0a1a2a3a4a5a6a7a8a9aaabacadaeafb0b1b2b3b4b5b6b7b8b9babbbcbdbebf",
-  "hex",
-);
-// Key Encryption Keys for KW modes
-export const KEK_128 = Buffer.from("c0c1c2c3c4c5c6c7c8c9cacbcccdcecf", "hex");
-export const KEK_192 = Buffer.from(
-  "d0d1d2d3d4d5d6d7d8d9dadbdcdddedfe0e1e2e3e4e5e6e7",
-  "hex",
-);
-export const KEK_256 = Buffer.from(
-  "f0f1f2f3f4f5f6f7f8f9fafbfcfdfefff0f1f2f3f4f5f6f7f8f9fafbfcfdfeff",
-  "hex",
-);
-/**
- * Helper to create a Kryptos oct key from raw bytes.
- */
-export const createOctKryptos = (
-  raw: Buffer,
-  algorithm: KryptosAlgorithm,
-  encryption?: KryptosEncryption,
-): Kryptos =>
-  KryptosKit.from.der({
-    id: randomUUID(),
-    algorithm,
-    encryption,
-    privateKey: raw,
-    type: "oct",
-    use: "enc",
-  });

package/__tests__/helpers/buffer-utils.ts DELETED Viewed

@@ -1,11 +0,0 @@
-/**
- * Convert Buffer to Uint8Array (zero-copy view).
- */
-export const toUint8Array = (buf: Buffer): Uint8Array =>
-  new Uint8Array(buf.buffer, buf.byteOffset, buf.byteLength);
-/**
- * Convert Uint8Array to Buffer (zero-copy view).
- */
-export const toBuffer = (arr: Uint8Array): Buffer =>
-  Buffer.from(arr.buffer, arr.byteOffset, arr.byteLength);

package/__tests__/helpers/index.ts DELETED Viewed

	@@ -1,2 +0,0 @@
1	- export * from "./buffer-utils";
2	- export * from "./jwe-adapter";